Home / Linux / Miscellaneous

AWS SSM SSH Proxy Command

AWS SSM SSH Proxy Command

aws-ssm-ec2-proxy-command

Prerequisits

Install SSH Proxy Command

  • Move proxy command script aws-ssm-ec2-proxy-command.sh to ~/.ssh/aws-ssm-ec2-proxy-command.sh
  • Ensure it is executable (chmod +x ~/.ssh/aws-ssm-ec2-proxy-command.sh)
Setup SSH Config
  • Add ssh config entry for aws ec2 instances to your ~/.ssh/config. Adjust key file path if needed. 
    host i-* mi-*
  IdentityFile ~/.ssh/id_rsa
  ProxyCommand ~/.ssh/aws-ssm-ec2-proxy-command.sh %h %r %p ~/.ssh/id_rsa.pub
  StrictHostKeyChecking no

Open SSH Connection

  • ssh <INSTACEC_USER>@<INSTANCE_ID>
  • Ensure AWS CLI environemnt variables are set properly
    • e.g. AWS_PROFILE='default' ssh [email protected]
    • If default region does not match instance region you need to provide it like this
    • AWS_PROFILE='default' ssh <INSTACEC_USER>@<INSTANCE_ID>--<INSTANCE_REGION>

TODO

Add variant to send ssh key by ec2-instance-connect:SendSSHPublicKey

0 Open More issues
Closed

A 'not a tty' file generated from the proxy command

For some reasons, a new empty not a tty file is created under my current directory after I've run ssh i-XXXXXXX via this proxy script.

I'm not sure what is causing this, and it's not from the echo ... >/dev/tty line 🤔

bug 
opened Jun 6, 2020 by zmingxie 10
Closed

ssh handshake expose on mac

Not really sure whether the words are correct. But I found that if there's no sh -c wrap the session create command, it will expose the handshake process and cause error like: protocol mismatch

I have to use

sh -c "aws ssm start-session \
  --target "${ec2_instance_id}" \
  --document-name 'AWS-StartSSHSession' \
  --parameters "portNumber=${ssh_port}""

instead of

aws ssm start-session \
  --target "${ec2_instance_id}" \
  --document-name 'AWS-StartSSHSession' \
  --parameters "portNumber=${ssh_port}"
opened Sep 16, 2020 by lisbethw1130 4
Closed

Gcchaves

Hey,

Got some problems with the script, "~/${ssh_user}" is creating /home/user/user, also the SSM agent undestands "~/" as "/var/snap/amazon-ssm-agent/".

opened Aug 7, 2020 by marinheiromc 3
Closed

Wrong ssh directory path

bug 
opened Aug 7, 2020 by marinheiromc 3
Closed

Added a check for ensuring the .ssh directory exists.

When connecting to SSM the first time after instance creation, the connections fail because the .ssh directory does not yet exist for the ssm-user.

opened Jul 23, 2020 by opsroller 2
Closed

Consider applying a license

Hello, and thanks for this. Would you consider applying a license or a public domain dedication to this repository?

I ask because, as a user in an academic environment, my projects come (as a matter of routine) under scrutiny for copyright compliance and plagiarism. Having a license or dedication is very useful when this happens.

opened Oct 18, 2020 by kastork 2

v1.0.0(Oct 18, 2020)

Information
Category: Linux / Miscellaneous
Watchers: 2
Star: 3
Fork: 0
Last update: Jun 10, 2020

Contents
    Resource links
    https://github.com/qoomon/aws-ssm-ec2-proxy-command
    Share this repo
    Most popular
    neovim Vim-fork focused on extensibility and usability
    trimstray A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.
    alacritty A cross-platform, GPU-accelerated terminal emulator
    immutable-js Immutable persistent data collections for Javascript which increase efficiency and simplicity.
    preactjs ⚛️ Fast 3kB React alternative with the same modern API. Components & Virtual DOM.
    dylanaraps 📖 A collection of pure bash alternatives to external processes.
    JakeWharton Bind Android views and callbacks to fields and methods.
    BurntSushi ripgrep recursively searches directories for a regex pattern
    ycm-core A code-completion engine for Vim
    syl20bnr A community-driven Emacs distribution - The best editor is neither Emacs nor Vim, it's Emacs *and* Vim!

    Related Repos


    Miscellaneous
    720
    Install Linux from a running Windows system, without need for a live USB.
    mikeslattery Install Linux over or alongside an existing Windows install, straight from Windows, without requiring to boot from external media like a flash drive or making BIOS configuration changes.
     
    Miscellaneous
    65
    Curated list of awesome opensource projects started and maintained by Egyptian developers
    mfouad A Curated list of awesome opensource projects started and maintained by Egyptian developers
     
    Miscellaneous
    45
    NimblePublisher is a minimal filesystem-based publishing engine with Markdown support and ...
    dashbitco NimblePublisher is a minimal filesystem-based publishing engine with Markdown support and code highlighting.
     
    Miscellaneous
    24
    All-in-one Download Script for Termux URL Opener
    M3GABOY All-in-one Download Script for Termux URL Opener. This script requires ffmpeg, youtube-dl, python, wget, spotdl to function.
     
    Miscellaneous
    472
    End-to-End Encryption for Zoom Meetings
    zoom End-to-End Encryption for Zoom Meetings
     
    Miscellaneous
    300
    Browse trending repos on Github by ⭐ stars ⭐ from your command line 💻
    hedythedev Browse trending repos on Github by ⭐ stars ⭐ from your command line 💻
     
    Miscellaneous
    4.5k
    A lightweight comments widget built on GitHub issues
    utterance A lightweight comments widget built on GitHub issues. Use GitHub issues for blog comments, wiki pages and more!
     
    Miscellaneous
    10
    Sample GitHub Actions workflow for continuously deploying to AWS CloudFormation
    aws-samples Sample GitHub Actions workflow for continuously deploying to AWS CloudFormation